Description
An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-1999-1544)
MySQL CVE-2022-21290 Vulnerability (CVE-2022-21290)
WordPress Plugin ARI Adminer-WordPress Database Manager Cross-Site Request Forgery (1.1.13)
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0301)
WordPress Plugin Custom Post Type UI Cross-Site Request Forgery (1.7.3)